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VERIFICATION OF CONNECTIONS BETWEEN DEVICES 

IN A NETWORK 

TECHNICAL FIELD 

5 Embodiments of the present invention relate to networks (e.g., local 

area networks). More specifically, embodiments of the present invention 
relate to networks used as utility data centers and server farms, for example. 

BACKGROUND ART 

10 Devices such as computer systems, routers, switches, load balancers, 

firewalls, and the like, are commonly linked to each other in networks. These 
networks are configured in different ways depending on implementation- 
specific details such as the hardware used and the physical location of the 
equipment, and also depending on the particular objectives of the network. 

15 One common type of network configuration includes a number of "virtual" 
networks, commonly known as virtual local area networks (VLANs). A VLAN 
is, in essence, a logical segmentation of a physical local area network (LAN). 

An advantage of VLANs is that the devices associated with a particular 
20 virtual network do not need to all be in the same physical location, yet all will 
appear to be on the same LAN. Prior Art Figure 1 is a block diagram of a 
portion of a LAN 10 that includes a number of racks (20, 21 and 22) of 
computer systems (30-38) and a hierarchy of switches (11-16). Each of the 
computer systems 30-38 is physically wired to a respective switch (14, 15 or 
25 16), which are each physically wired to switches 12 and 13, which in turn are 
physically wired to switch 11. By routing signals through the various switches, 
computer systems in different racks or within the same rack can communicate 
with each other, within certain constraints that will be explained. In addition, a 
signal from a remote device (not shown) can also be routed through the 
30 various switches so that the remote device can communicate with any of the 
devices in LAN 10, within certain constraints as well. 

In the simplified example of Prior Art Figure 1, LAN 10 is logically 
segmented into a VLAN 1 and a VLAN 2. VLAN 1 includes computer systems 
35 30 and 37, and VLAN 2 includes computer systems 31 and 36. Should 
computer system 30 need to communicate with computer system 37, for 
example, a signal from computer system 30 can be routed through switch 14 
to switch 16 and on to computer system 37. 
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For reasons such as security or privacy, communication between 
VLANs may not be permitted. In LAN 10, access to a particular VLAN is 
controlled by the switches 11-16. For example, switch 16 can be configured to 
forward a message from computer system 30 (VLAN 1 ) to computer system 37 
5 (VLAN 1) but to not forward a message from computer system 30 (VLAN 1) to 
computer system 36 (VLAN 2). In a similar manner, communication from a 
remote device can be controlled so that the remote device can only 
communicate with certain devices in LAN 10. Therefore, even though VLANs 
can share resources such as switches, VLANs can be prevented from sharing 
10 traffic and information. 

Another advantage of VLANs is that the management and cabling of 
groups of devices are simplified, particularly when the allocation of resources 
within the LAN is changed. For instance, in the simplified example of Prior Art 
15 Figure 1 , VLAN 1 may be used by one organization and VLAN 2 by another. 
The first organization may need more resources, while the resources of the 
other organization may be under-utilized. To resolve this, one of the computer 
systems in VLAN 2 can be reallocated to VLAN 1 . This is accomplished by 
reconfiguring the appropriate switches instead of rewiring the LAN. 

20 

Thus, management and allocation of resources within and across 
VLANs are predicated on correct cabling between devices in the LAN. While 
every effort can be made to ensure that the network is wired correctly the first 
time, mistakes can still be made. For example, as a network is wired, a 

25 technician may attach a cable to a particular port (socket) of a switch, but 
incorrectly record the port (socket) number in a network map. Similarly, 
although a network map may instruct a technician to attach a cable to a 
particular port, the technician may inadvertently attach the cable to an 
incorrect port. Therefore, it remains important to verify, after the network is set 

30 up, that the network is indeed set up correctly. 

However, networks of devices are often large and complex, and so 
verifying that network cabling is correct can be difficult and costly. Some prior 
art procedures for verifying proper network cabling rely on manual procedures 
35 such as visually tracing each cable from its source device to its destination 
device. This is slow and costly, and in some cases is not a viable procedure, 
because large groups of cables are often bound together into bundles, 
making it difficult if not impossible to visually trace a particular cable as it 
disappears into a bundle. 
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Other prior art procedures utilize a "ping" command that is issued from 
a source device to a target device. If the ping command is successful, it can 
be presumed that the cable is properly connected. However, this approach is 
5 also slow and costly, in particular when used with networks that employ 
hundreds of devices and thousands of cables. Furthermore, if the ping 
command is not successful, it remains to be determined which end of the 
cable is connected incorrectly. Thus, both ends of the cable need to be 
checked. 

0 

For these and other reasons, a method and/or system that can verify 
that devices in a network are properly connected physically would be of value. 
Embodiments of the present invention provide this and other advantages. 
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DISCLOSURE OF THE INVENTION 

Embodiments of the present invention pertain to methods and systems 
for verifying that devices in a network are properly connected physically. A 
listing is received from a device in the network. The listing identifies other 
5 devices coupled to the device and also identifies which communication port of 
the device each of the other devices is coupled to. The listing is compared 
against reference information representing the design of the network. 
Discrepancies between the listing and the reference information are identified. 
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BRIEF DESCRIPTION OF THE DRAWINGS 

The accompanying drawings, which are incorporated in and form a part 
of this specification, illustrate embodiments of the invention and, together with 
the description, serve to explain the principles of the invention: 

5 

Prior Art Figure 1 is a block diagram of an exemplary local area network 
(LAN) including virtual local area networks. 

Figure 2 is a block diagram of an exemplary LAN upon which 
10 embodiments of the present invention can be implemented. 

Figure 3 is a block diagram of an exemplary LAN incorporating a 
cabling verifier according to one embodiment of the present invention. 

15 Figure 4 is a flowchart of a process for verifying that devices are 

properly connected according to one embodiment of the present invention. 

Figure 5 is a data flow diagram for cabling verification elements 
according to one embodiment of the present invention. 

20 

The drawings referred to in this description should not be understood 
as being drawn to scale except if specifically noted. 
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BEST MODE FOR CARRYING OUT THE INVENTION 

Reference will now be made in detail to various embodiments of the 
invention, examples of which are illustrated in the accompanying drawings. 
While the invention will be described in conjunction with these embodiments, 
5 it will be understood that they are not intended to limit the invention to these 
embodiments. On the contrary, the invention is intended to cover alternatives, 
modifications and equivalents, which may be included within the spirit and 
scope of the invention as defined by the appended claims. Furthermore, in 
the following description of the present invention, numerous specific details 
10 are set forth in order to provide a thorough understanding of the present 

invention. In other instances, well-known methods, procedures, components, 
and circuits have not been described in detail as not to unnecessarily obscure 
aspects of the present invention. 

15 Aspects of the present invention may be practiced on a computer 

system that includes, in general, a processor for processing information and 
instructions, random access (volatile) memory (RAM) for storing information 
and instructions, read-only (non-volatile) memory (ROM) for storing static 
information and instructions, a data storage device such as a magnetic or 

20 optical disk and disk drive for storing information and instructions, an optional 
user output device such as a display device (e.g., a monitor) for displaying 
information to the computer user, an optional user input device including 
alphanumeric and function keys (e.g., a keyboard) for communicating 
information and command selections to the processor, and an optional user 

25 input device such as a cursor control device (e.g., a mouse) for 

communicating user input information and command selections to the 
processor. 

Figure 2 is a block diagram of an exemplary local area network (LAN) 
30 110 upon which embodiments of the present invention can be implemented. It 
is appreciated that LAN 110 can include elements in addition to those shown 
(e.g., more racks, computers, switches and the like), and can also include 
other elements not shown or described herein. Furthermore, the blocks 
shown by Figure 2 can be arranged differently than that illustrated, and can 
35 implement additional functions not described herein. 

In general, LAN 110 utilizes a programmable infrastructure that enables 
the virtual connection of selected computing resources as well as the isolation 
of selected computing resources, thereby ensuring the security and 
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segregation of computing resources at the lowest infrastructure level. The 
pool of computing resources in the LAN 110 includes pre-wired, pre- 
integrated, and pre-tested physical resources. The computing resources in 
the LAN 110 can be dynamically and logically reconfigured into various virtual 
5 local area networks (VLANs). A number of such VLANs can be created and 
managed by the utility controller software. Proper wiring of LAN 1 10 is 
automatically verified according to the techniques described herein (refer to 
Figures 3, 4 and 5). 

10 In the present embodiment, LAN 1 10 of Figure 2 includes a number of 

switches 111 through 116, and a number of computers 130-138 that are 
couplable to the switches 111-116. Typically, the computers 130-138 are 
physically located in computer racks 120, 121 and 122, although this may not 
always be the case. In this embodiment, the switches and computer systems 

15 are interconnected using cables or the like. 

In the present embodiment, the switches 111-116 can be programmed 
or configured such that LAN 1 10 is logically separated into a number of 
VLANs. The programming or configuring of these switches can be changed, 
20 thereby changing the resources allocated to the various VLANs. For example, 
by changing the configuration of switch 114, computer system 130 can be 
"moved" from one VLAN to another. The allocation and reallocation of 
resources between VLANs can be achieved without changing the physical 
wiring between devices. 

25 

In addition to computer systems and switches, LAN 110 can include 
other types of devices such as, but not limited to, routers, load balancers, 
firewalls, and hubs. These other types of devices may also be programmable 
or configurable. As will be seen, the features of the present invention can be 
30 used with these types of devices as well as with switches. That is, although 
described primarily in the context of switches, the features of the present 
invention are not so limited. 



In the present embodiment, LAN 110 includes or is coupled to a server 
35 140. Server 140 executes utility controller software for managing the 

resources in LAN 110, and as such server 140 can also be referred to as a 
utility controller. For example, the utility controller software executed by server 
140 enables the deployment, allocation, and management of VLANs. The 
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utility controller software monitors deployed VLANs, and automatically 
reallocates resources when there is a reason to do so. 

In the present embodiment, server 140 includes a utility controller 
5 database 150; alternatively, utility controller database 150 can reside in a 
separate storage device that is coupled to the server 140. Utility controller 
database 150 includes information pertaining to the various resources in LAN 
110. In one embodiment, utility controller database 150 includes information 
that is regarded as a correct and accurate representation of the LAN 1 10 as it 
10 is designed and as it should be implemented. 

The utility controller database 150 is also referred to herein as 
"reference information," "design information," or "design basis information." As 
resources in LAN 110 are reallocated, the information in utility controller 
15 database 150 is also changed. Changes to the utility controller database 150 
can also be used to drive changes to the allocation of resources in LAN 110. 

Utility controller database 150 includes information such as the types of 
devices in LAN 110 and a representation of each VLAN. Other information 

20 included in utility controller database 150 includes, but is not limited to: the 
network or MAC (media access control) address for the resources of LAN 110, 
including the MAC addresses of each network interface card (NIC) used by 
those resources; the port numbers of resources such as switches; the VLAN 
identifiers associated with each of the port numbers; the socket identifier for 

25 each cable connected to each of the resources of LAN 110; manufacturer and 
model numbers; and serial numbers. 

In one embodiment, utility controller database 150 is embodied as a 
computer-readable network map. It is understood that such a map need not 
30 exist in a form conventionally associated with human-readable maps. It is 
also appreciated that a computer-readable network map can be synthesized 
on-the-fly from the information stored in utility controller database 150. 

Figure 3 is a block diagram of an exemplary LAN 110 incorporating a 
35 cabling verifier according to one embodiment of the present invention. At 
least one of the functions of the cabling verifier is to automatically verify that 
the actual (as built) connections between devices in LAN 110 is correct 
relative to the reference or design information in utility controller database 
150. It is appreciated that the cabling verifier can be used to update the 
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information in utility controller database 150 if the presumption is instead that 
the devices are correctly connected. In general, the cabling verifier can be 
used to ensure that information describing the actual connections between 
devices and the information in the utility controller database 150 are 
5 synchronized (e.g., they match). One set of information is known to be correct. 
By synchronizing the two sets of information, the other set of information is 
also made correct. 

In the example of Figure 3, the cabling verifier is embodied as cabling 
10 verification software residing on server 140. The cabling verification software 
and the utility controller software can reside on the same or on different 
devices. The cabling verification software and the utility controller software 
can also reside in the same or in different software packages or applications. 
What is of significance is that, in one embodiment, the cabling verification 
15 software functions independently of the utility controller software, allowing 
independent verification of the correctness of the connections between 
network devices. 

In the present embodiment, the cabling verifier (e.g., the cabling 
20 verification software) is coupled to the utility controller database 150. As 

described above, utility controller database 150 includes reference or design 
information for LAN 110. The cabling verifier is also coupled to the switching 
fabric 160 of LAN 110 (e.g., switches 111-116). In general, the cabling verifier 
has access to "connection information" for each of the switches 111-116. 

25 

As used herein, "connection information" refers to information that 
describes how devices are actually connected. For example, connection 
information can include information such as the MAC address table(s) 
resident on each of the switches 111-116. Connection information is 

30 embodied as an entity separate from the reference information mentioned 
above. In other words, the reference information describes the network as it 
should be built, or as it is believed to be built, while the connection information 
describes the network as it actually is built and operates. Accordingly, 
connection information may also be referred to herein as "as-built 

35 information." 

Thus, the cabling verifier has access to connection information (e.g., the 
MAC address tables or equivalent) resident on each of the switches 111-116. 
This can be accomplished by communicating with one of the switches that in 
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turn communicates with each of the other switches, by directly communicating 
with each switch either in series or in parallel, or by some combination of 
these actions. 

5 Figure 4 is a flowchart 400 of a process for verifying that devices in a 

network are properly connected physically, according to one embodiment of 
the present invention. Although specific steps are disclosed in flowchart 400, 
such steps are exemplary. That is, embodiments of the present invention are 
well suited to performing various other steps or variations of the steps recited 

10 in flowchart 400. It is appreciated that the steps in flowchart 400 may be 

performed in an order different than presented, and that not all of the steps in 
flowchart 400 may be performed. All of, or a portion of, the methods described 
by flowchart 400 can be implemented using computer-readable and 
computer-executable instructions which reside, for example, in computer- 

15 usable media of a computer system or like device. In the present 

embodiment, flowchart 400 is implemented by the cabling verification software 
residing on server 140 of Figure 3. 

In step 410 of Figure 4, in the present embodiment, reference 
20 information for the design of the VLAN is received by the cabling verification 
software of Figure 3. In one embodiment, this information resides in utility 
controller database 150 of Figure 3. in another embodiment, the reference 
information includes a computer-readable map of the VLAN, perhaps derived 
from the information in utility controller database 150. 

25 

In step 420 of Figure 4, in one embodiment, an attempt is optionally 
made to generate traffic over each cable to be tested (verified). For example, 
a "ping" command can be sent from one device to another over a cable to be 
tested. Alternatively, a ping command can be sent from, for example, one 
30 server computer system to another on the network, perhaps traversing 
multiple intermediate devices and cables. When the ping command is 
successfully sent and a response is received, the physical integrity of the 
connection or connections between the source and destination devices can 
be verified. 



35 



The ping command, or a similar type of message, can also be used to 
refresh the MAC address tables in the source and destination devices. That 
is, there may be instances in which a MAC address table on a device is 
cleared, or perhaps an address in a MAC address table is deleted because a 
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time-out condition is satisfied. By generating traffic between devices on a 
periodic basis using, for example, a ping command, the respective MAC 
address tables are relatively up-to-date and complete. 

5 Use of a ping command or the like can increase the yield of cables that 

pass a verification test by increasing network traffic and thereby increasing the 
likelihood that the MAC address tables will contain the desired entries. There 
are other ways to increase the pass rate. One way is to test the cabling of a 
device that has just booted up, so that the initial network handshake between 

10 the device and a switch is still fresh in the MAC address table of the switch. 
Another way is to execute a program on the device that repeatedly generates 
at least one message over the network (different from a ping command). 

Returning to Figure 4, in step 430, the cabling verification software 
15 receives connection information (e.g., a MAC address table) from each of the 
devices (e.g., switches) in the network being tested. In one embodiment, the 
connection information is received in response to a command issued to the 
network devices by, for example, the cabling verifier (e.g., the cabling 
verification software of Figure 3). The command can request that the 
20 information be provided immediately in response to the command. 
Alternatively, the command can include information that establishes a 
schedule or deadline for providing the connection information. Thus, 
connection information is received by the cabling verifier either in response to 
a command, or on a periodic basis regardless of whether another command is 
25 issued. 

In another embodiment, the connection information is provided to the 
cabling verifier in response to some sort of triggering event. For example, if a 
new device is added to the network, or if for some reason some portion of the 
30 network is rewired, then the affected devices can automatically provide their 
connection information to the cabling verifier. 

In yet another embodiment, the connection information resident on 
network devices is accessed and read by the cabling verifier. For example, 
35 instead of requesting the information and waiting for a response, the cabling 
verifier accesses a known memory location on a switch and reads the 
connection information that is stored there. Other methods for exchanging 
information between network devices and the cabling verification software can 
be used. 
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In step 440 of Figure 4, the reference information of step 410 and the 
connection information of step 430 can be compared. Any discrepancies 
between the reference information and the connection information can be 
5 identified. 

In one embodiment, the comparison of reference and connection 
information is accomplished as follows. As mentioned above, the MAC 
address table on a switch, for example, is accessed (e.g., read or retrieved). 
10 The MAC address table is searched for the MAC address (or addresses) used 
by each device that is expected to be connected to that switch. If a matching 
MAC address is found, the corresponding port number is read from the MAC 
address table and compared to the port number provided by the reference 
information (e.g., a network map). 



15 
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In step 450, the results of the comparison between the reference and 
connection information are reported. As noted above, in one embodiment, the 
MAC address table on a switch is searched, and a matching MAC address 
may or may not be found. 



If a matching MAC address is not found, then a message is generated 
that the cable connection cannot be verified at present. Note that the absence 
of a matching MAC address may be due to the lack of traffic over the cable, 
such that the MAC address table is not refreshed with the missing MAC 
25 address. Thus, corrective action can entail sending a ping command as 
described above, in an attempt to generate traffic and refresh the MAC 
address table. 

If a matching MAC address is found, the port number read from the 
30 MAC address table is compared to the port number provided by the reference 
information. 

If the port number read from the MAC address table does not match the 
port number from the reference information, a message is generated that 
35 includes information such as the identifiers for the source and destination 
devices (the devices attached to the cable being verified), the port numbers 
found, and the port numbers expected. 



12 



200208747-1 

If the port number read from the MAC address table matches the port 
number from the reference information, a message can be generated 
indicating that the cable being verified has passed. 

5 Thus, a report can be generated that identifies which cables are 

satisfactory, which cables did not pass verification, and which cables could not 
be verified at present. The report can include additional information, such as 
the identifiers for the devices attached to a cable that did not pass verification, 
thereby helping technicians locate and correct cabling errors. For example, 
10 the report can list an incorrectly placed cable, the identifiers for the device and 
port where the cable is currently inserted, and the identifiers of the device and 
port where the cable should be inserted, thereby enabling a technician to 
successfully move the cable from the incorrect location to the correct location. 

15 The discussion above is based on the presumption that the reference 

information (e.g., utility controller database 150 of Figure 3) is true and correct, 
and that any discrepancies between the reference and connection information 
are due to a potential error in the actual connections between devices. 
Methods for ensuring the accuracy and completeness of the reference 

20 information are outside the scope of the present invention; however, such 
methods are known in the art. It is appreciated that embodiments of the 
present invention can be extended to the case in which the connections 
between devices, and hence the connection information, are known to be true 
and correct, in which case the connection information can be used as the 

25 basis for updating the reference information. In other words, there can be 
instances in which discrepancies between the reference and connection 
information result in a change to the reference information. Generally 
speaking, the cabling verification software can be used to synchronize the 
connection information and the reference information, with one source of 

30 information being used to drive a change to the other source of information, 
depending on which source of information is known to be correct. 

Figure 5 is a data flow diagram 500 for cabling verification elements 
according to one embodiment of the present invention. Although illustrated 
35 and described as separate elements, it is appreciated that any of these 

elements can be combined and/or integrated with any of the other elements. 

In the embodiment of Figure 5, the elements of the present invention 
include design (or reference) information 510, connection (or as-built) 
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information 515, cabling verification software 520, and a report 530. As 
described previously herein, the design information 510 includes a computer- 
readable version of a network design; specifically, the version of a network 
that is presumed to be correct and that is presumed to be implemented. The 
5 connection information 515 includes computer-readable information that 
represents the network as it actually is implemented. Cabling verification 
software 520 receives and compares the design information 510 and the 
connection information 515 and generates a report 530. The report 530 
includes a listing of any discrepancies between the design information 510 

10 and the connection information 515. The report 530 can also list instances of 
agreement between the design and connection information, and instances in 
which further investigation may be needed. Furthermore, the report 530 can 
list specific information that can be used to correct the error; for example, it can 
list an incorrectly placed cable, the identifiers for the device and port where 

15 the cable is currently inserted, and the identifiers of the device and port where 
the cable should be inserted, thereby enabling a technician to successfully 
move the cable from the incorrect location to the correct location. 

In summary, embodiments of the present invention provide methods 
20 and systems that can verify that network devices (e.g., servers and switches) 
are properly connected physically. By virtue of automated tasks such as those 
described above, correctness of the cabling can be verified in less time, at 
less expense, and as often as desired. Each instance of an incorrect or 
otherwise unsatisfactory cabling can be pinpointed quickly and early. 
25 Corrective actions can be readily derived. 

As mentioned, the cabling verification software and method thereof can 
be executed periodically or on demand. Accordingly, cabling can be checked 
for correctness even when an intentional change to the cabling has not been 
30 made. In other words, embodiments of the invention can be used to 

automatically discover failures such as, but not limited to: network failures 
caused by a cable getting cut, pinched, or otherwise damaged; network 
failures caused by a NIC becoming defective or unable to function; and 
network failures caused by failure of a cable plug or a cable socket. 

35 

Embodiments of the present invention are thus described. While the 
present invention has been described in particular embodiments, it should be 
appreciated that the present invention should not be construed as limited by 
such embodiments, but rather construed according to the following claims. 
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